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Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims: 

1 . (Currently Amended) A method of authenticating candidate members 
wishing to participate in an IP multicast via a communication network, where data sent 
as part of the multicast Is to be secured using a key revocation based scheme the 
method comprising: 

a candidate member receiving [[an]] a multicast invitation from a group controller 
to join the multicast; 

the candidate member sending a ioin request registration message to the group 
controller, the registration message including the candidate member's originating IPv6 
address, a copy of the candidate member's public key from the candidate member's 
public-private key pair and a digital signature, the digital sionature Generated bv 
apolvina a crvotoaraphic hashino function to t he candidate member's private key^ from 
the candidate member's public-private key oai r. a random number and time stamp, both 
received from the group controller : 

at the group controller, verifying that the public key received from the candidate 
member wishing to participate is owned by the candidate member and that the public 
key is associated with the respective candidate member's source IPv6 address by 
inspecting an interfacelD part of the IPv6 address; 

using the digital signature, further verifying that the candidate member owns the 
public-private key pair to which the public key belongs and that the candidate temiinal 
owns the source IP address 

whereby the candidate subscriber proves ownership of the public key contained 
in the certificate. 

2. (Previously Presented) The method according to claim 1 , wherein said 
key revocation based scheme is a Logical Key Hierarchy based scheme. 
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3. (Previously Presented) The method according to claim 1 , wherein 
each candidate member generates the intertecelD part of the candidate member's IPv6 
address by taldng a cryptographic hash over the candidate member's own public key 
and one or more other parameters. 

4. (Previously Presented) The method according to claim 3, wherein 
upon receipt of the message, the group controller: 

a) using the received public key to confirm that the signature is valid, thus 
proving that the candidate member does indeed own the public-private key pair to which 
the received public key belongs and 

b) applying the same cryptographic hash, as used by the candidate member, to 
the public key and the other parameter(s) and comparing the result to the interfacelD 
part of the candidate member's IPv6 address, thus verifying that a source IPv6 address 
is owned by the candidate. 

5. (Previously Presented) The method according to claim 2, wherein, 
after the group controller has received the public key from a given candidate member 
and has verified that the public key is associated with the IPv6 address of the sender, 
the group controller sends a unique Key Encryption Key to the member, encrypted with 
that member's public key, and the group controller also sends a Traffic Encryption Key 
and a LKH key set to the member, encrypted with the Key Encryption Key. 

6. (Previously Presented) The method according to claim 1 , wherein said 
IP multicast comprises: 

a one-way multicast where a single node multicasts a stream of data to several 
other nodes; 

a group multicast where group members multicast data to all other members of 
the group; or 

a tele-conference or a videoconference or a multimedia conference. 
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7. (Currently Amended) A method of authorizing a user to participate in 
a secure IP multicast or broadcast, the method comprising: 

distributing security keys to users using a key revocation based mechanism; 

delivering a certificate to the user, the certificate verifying that a public-private 
key pair identified in the certificate can be validly used by the user to access said secure 
multicast ofHf]] broadcast, wherein the certificate further includes a digital signature 
generated by applying [[an]] a crvptoaraohic algorithm and the user's private key to the 
contents of the certificate; 

subsequently verifying at a control node that the certificate is owned by the user 
using a proof-of-possession procedure that is based on the private key; and 

assuming that verification is obtained, using said public key to send a Key 
Encryption Key to the user. 

8. (Previously Presented) The method according to claim 7. wherein said 
key revocation based scheme is a Logical Key Hierarchy based scheme. 

9. (Previously Presented) The method according to claim 8, wherein said 
step of verifying at the control node that the certificate is owned by the user, is carried 
out after the control node receives a request from the user to join said secure multicast 
or broadcast. 

10. (Previously Presented) The method according to claim 7, wherein said 
proof-of-possession procedure involves the control node sending a random number to 
the user in plain text, and the user sending a response to the control node containing a 
signature generated by applying the private key to the random number, wherein the 
control node is in possession of the user's certificate and can check whether or not the 
message Is correctly signed with the user's private key. 
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1 1 . (Currently Amended) The method according to claim 7, wherein the 
user to be authorized has a subscription to a first, home communication network and 
wishes to participate in a multicast or broadcast service via a second, visited network in 
which the user is roaming, the method comprising: 

the visited network, in which the user is roaming, contacting the user's home 
network, upon receipt of an initial registration request from said user, to authorize the 
user; 

following authorization by the home networit, generating [[a]] the certificate 
relating to said sen/ice and generating the public-private key pair, either at the user 
equipment or within one of the networks, and signing the certificate; and 

sending the certificate to the user. 

12. (Previously Presented) The method according to claim 1 1 , wherein an 
Authentication and Key Agreement (AKA) procedure is used to authorise the user. 

1 3. (Currently Amended) A group controller for authenticating candidate 
members wishing to participate in an IP multicast via a communication network, where 
data sent as part of the multicast is to be secured using a key revocation based scheme 
requiring that each candidate member submit a public key to the group controller in 
order to become a participating candidate member, the group controller comprising: 

means for sending [[an]] a multicast invitation to a candidate member to join the 
multicast; 

means for receiving from the candidate member a registration message, the 
registration message including the candidate member's originating IPv6 address, a copy 
of the candidate member's public key from the candidate member's public-private key 
pair and a digital signature using the candidate member's private key from the 
candidate member's public-private key pair; 

means for verifying that the public key received from the candidate member 
wishing to participate is owned by the candidate member and that the public key is 
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associated with the candidate member's oriQinatina IPv6 address by inspecting an 
interfacelD part of the oriQinatina IPv6 ff lPH addres s, wherein the verifvina means : and 
means for using the digital signatur e. In a oroof-of oossession procedure based 
on the Private kev. for verifying that the candidate member owns the public-private key 
pair to which the public key belongs and that the candidate terminal owns the sewoe 
oriQinatina IPv6 [[IPJJ address. 

14. (Canceled) 

15. (Previously Presented) The group controller according to claim 13, 
wherein said key revocation based scheme is a Logical Key Hierarchy based scheme. 

16. (Currently Amended) The group controller according to claim 1 3, 
further comprising: 

means for receiving and storing a generated interfacelD part of tjie [[a]] 
candidate member's originating ewn IPv6 address and for receiving a joining request 
from the candidate member to the group controller which contains: 

the member's originating iPv6 address including the generated interface ID; 

the candidate member's own public key; and 

a signature over the entire message generated using the member's private key. 

17. (Currently Amended) The group controller according to claim 16, 
further comprising means for, upon receipt of the message: 

using the received public key to confirm that the signature is valid, thus proving 
that the candidate member does indeed own the public-private key pair to which the 
received public key belongs; and 

applying a cryptographic hash, used by the candidate member, to the public key 
and other parameters and comparing the result to the interfacelD part of the candidate 
member's IPv6 address, thus verifying that the sourc e IPv6 address is owned by the 
candidate member. 
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1 8. (Previously Presented) The group controller according to claim 1 7. 
wherein, after the group controller has received the public key from a given candidate 
member and has verified that the public key is associated with the IP address of the 
sender, the group controller having: 

means for sending a unique Key Encryption Key to the candidate member, 
encrypted with that candidate member's public key; and 

means for sending a Traffic Encryption Key and a LKH key set to the candidate 
member, encrypted with the Key Encryption Key. 

19. (Previously Presented) The group controller according to claim 13, 
wherein said IP multicast comprises: 

means for a single node multicasting a stream of data to several other nodes; 
means for a group multicast where group members multicast data to all other 
members of the group; or 

means for a tele-conference or a videoconference or a multimedia conference. 

20. (Currently Amended) A group controller for authorizing a user to 
participate in a secure IP multicast or broadcast, the group controller comprising: 

means for distributing security keys to the user using a key revocation based 
mechanism; 

means for delivering a certificate to the user, the certificate verifying that a public- 
private key pair identified in the cerfificate can be validly used by the user to access said 
secure multicast or broadcast, wherein the certificate includes a digital signature 
generated by applying [[an]] a crvptoaraphic algorithm and the user's private key to the 
contents of the certificate; 

means for subsequently verifying at a control node that the certificate is owned 
by the user using a proof-of-possession procedure that is based on the private key; and 

means for assuming that verification is obtained, using said public key to send a 
Key Encryption Key to the user. 
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21 , (Previously Presented) The group controller according to claim 20. 
wherein said key revocation based scheme is a Logical Key Hierarchy based scheme. 

22, (Previously Presented) The group controller according to claim 21, 
wherein means for verifying at the control node that the certificate is owned by the user, 
also verifies the certificate after the control node receives a request from the user to join 
said secure multicast or broadcast. 

23. (Previously Presented) The group controller according to claim 20, 
wherein the control node further comprises: 

means for sending a random number in a message to the user in plain text; and 
means for receiving from the user a response containing a signature generated 
by applying the private portion of the public-private key to the random number, wherein 
the control node is in possession of the user's certificate and can check whether or not 
the message is conrectly signed with the user's private key. 

24. (Previously Presented) The group controller according to claim 20, 
wherein the user to be authorized has a subscription to a first, home communication 
network and wishes to participate in a multicast or broadcast service via a second, 
visited network in which the user Is roaming, the group controller including means for: 

the visited network, in which the user is roaming, contacting the user's home 
network, upon receipt of an initial registration request from said user, to authorize the 
user 

receiving from the visited network contacting the user's home network, upon 
receipt of an initial registration request from said user, to authorize the user; 

means for generating the certificate relating to said service following 
authorization by the home network; 

means for generating the public-private key pair and signing the certificate; and 

means for sending the certificate to the user. 
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25. (Previously Presented) The group controller according to claim 20, 
wherein an Authentication and Key Agreement (AKA) procedure is used to authorize the 
user. 
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